1409912665106595007e060c3aa3fbfb08fb64dbff6ff18fd7dd6830eac87add | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1409912665106595007e060c3aa3fbfb08fb64dbff6ff18fd7dd6830eac87add
Size

62KB
MD5

3c425f5266bf71f4f3033becf564ddd5
SHA1

f900e97d0f59c8a699044585ee85c602626f6e8b
SHA256

1409912665106595007e060c3aa3fbfb08fb64dbff6ff18fd7dd6830eac87add
SHA512

b07e8408730e235d1f1b593ff89d714d6dce36dff2c4145860024d67f606b4552323451ba8611ea124062352ccd4f1750c2ee37fecff956e4297eee9a2c5af21
SSDEEP

1536:zyxii9dkRW98QJAj5c9afndr3gNJ7GxrIiy:mxl9dkRWSQujYAndrwN9WY

Score

N/A

Malware Config

Signatures

Files

1409912665106595007e060c3aa3fbfb08fb64dbff6ff18fd7dd6830eac87add
.exe windows x86

43559e9a2f22d4f50d3e346257e1a7ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
VirtualAlloc
lstrlenA
HeapAlloc
InitializeCriticalSection
DeleteCriticalSection
lstrlenW
GetVersionExA
InterlockedCompareExchange
FreeLibrary
CloseHandle
LoadLibraryA
Sleep
InterlockedIncrement
LeaveCriticalSection
LocalAlloc
LocalFree
lstrcmpiW
HeapFree
GetModuleFileNameW
MultiByteToWideChar
HeapDestroy
GetCurrentProcessId
ReadFile
LoadLibraryW
InterlockedExchange
GetTickCount
GetLastError
UnhandledExceptionFilter
GetModuleHandleW

user32

TranslateMessage
PeekMessageW
MessageBoxW
EndDialog
GetDesktopWindow
SetCursor
BeginPaint
KillTimer
SetWindowPos
LoadCursorW
GetClientRect
SetDlgItemTextW
SetFocus
ReleaseDC
SetWindowLongW
SetForegroundWindow
GetParent

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 672KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ